CVE-2014-2894

Loading...

General

Score:7.2/10.0
Severity:Medium
Category:Numeric Error

Impact Metrics

Confidentiality:Complete
Integrity:Complete
Availability:Complete

Exploitability Metrics

Access Vector:Local
Access Complexity:Low
Authentication:None

Relative vulnerabilities

CVE-2010-0431, CVE-2010-2784, CVE-2011-0011, CVE-2011-1750, CVE-2011-1751, CVE-2011-2212, CVE-2011-2527, CVE-2011-4111, CVE-2011-4127, CVE-2012-0029, CVE-2012-2652, CVE-2012-3515, CVE-2012-6075, CVE-2013-2007, CVE-2013-2231, CVE-2013-4148, CVE-2013-4149, CVE-2013-4150, CVE-2013-4151, CVE-2013-4344, CVE-2013-4526, CVE-2013-4527, CVE-2013-4529, CVE-2013-4530, CVE-2013-4531, CVE-2013-4533, CVE-2013-4534, CVE-2013-4535, CVE-2013-4536, CVE-2013-4537, CVE-2013-4538, CVE-2013-4539, CVE-2013-4540, CVE-2013-4541, CVE-2013-4542, CVE-2013-4544, CVE-2013-6399, CVE-2014-0142, CVE-2014-0143, CVE-2014-0144, CVE-2014-0145, CVE-2014-0146, CVE-2014-0147, CVE-2014-0150, CVE-2014-0182, CVE-2014-0222, CVE-2014-0223, CVE-2014-3461, CVE-2014-3615, CVE-2014-3640, CVE-2014-5263, CVE-2014-7815, CVE-2014-7840, CVE-2014-8106, CVE-2015-3209, CVE-2015-3456, CVE-2015-5165, CVE-2015-5279, CVE-2015-7512, CVE-2016-1714, CVE-2016-2857, CVE-2016-3710, CVE-2016-3712, CVE-2016-5403, CVE-2017-2615, CVE-2017-2620

Published on 23/04/14 - Updated on 29/12/17

Description

Off-by-one error in the cmd_smart function in the smart self test in hw/ide/core.c in QEMU before 2.0 allows local users to have unspecified impact via a SMART EXECUTE OFFLINE command that triggers a buffer underflow and memory corruption.

Category: Numeric Error

CWE-189 (Numeric Errors)
Weaknesses in this category are related to improper calculation or conversion of numbers.

Security Notices

US National Vulnerability DatabaseCVE-2014-2894
CentOS CESA-2014:0743
Debian DSA-2932-1, DSA-2933-1
Oracle Linux ELSA-2014-0704, ELSA-2014-0743, ELSA-2015-0349, ELSA-2017-0621
Redhat RHSA-2014:0704, RHSA-2014:0743, RHSA-2014:0888
SUSE SUSE-SU-2014:0816
Ubuntu USN-2182-1

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
qemuqemu

Share this vulnerability with:

Twitter Facebook LinkedIn Mail